What is the severity of RHSA-2025:7425?

The severity of RHSA-2025:7425 is classified as important.

What versions are affected by RHSA-2025:7425?

RHSA-2025:7425 affects Red Hat Enterprise Linux 8, Red Hat Enterprise Linux Server for IBM z Systems, Red Hat Enterprise Linux for ARM 64, and Red Hat Enterprise Linux for Power, little endian.

How do I fix RHSA-2025:7425?

To fix RHSA-2025:7425, update your systems to the latest packages provided by Red Hat.

What is RHSA-2025:7425 related to?

RHSA-2025:7425 relates to vulnerabilities found in a service for building customized OS artifacts.

Is there a workaround for RHSA-2025:7425?

Currently, there are no specified workarounds for RHSA-2025:7425; applying updates is recommended.

Vulnerability/
RHSA-2025:7425

high

13/5/2025

RHSA-2025:7425: Important: osbuild-composer security update

First published: Tue May 13 2025(Updated: )

A service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Besides building images for local usage, it can also upload images directly to cloud. It is compatible with composer-cli and cockpit-composer clients.<br>Security Fix(es):<br><li> golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing (CVE-2025-30204)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Affected Software	Affected Version	How to fix
Red Hat Enterprise Linux 8
Red Hat Enterprise Linux Server for IBM z Systems
Red Hat Enterprise Linux for ARM 64
Red Hat Enterprise Linux for Power, little endian - Extended Update Support
redhat/osbuild-composer	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-core	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-core-debuginfo	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-debuginfo	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-debugsource	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-tests-debuginfo	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-worker	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-worker-debuginfo	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-core	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-core-debuginfo	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-debuginfo	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-debugsource	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-tests-debuginfo	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-worker	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-worker-debuginfo	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-core	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-core-debuginfo	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-debuginfo	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-debugsource	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-tests-debuginfo	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-worker	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer-worker-debuginfo	<132.2-1.el9_6	132.2-1.el9_6
redhat/osbuild-composer	<132.2-1.el9_6.aa	132.2-1.el9_6.aa
redhat/osbuild-composer-core	<132.2-1.el9_6.aa	132.2-1.el9_6.aa
redhat/osbuild-composer-core-debuginfo	<132.2-1.el9_6.aa	132.2-1.el9_6.aa
redhat/osbuild-composer-debuginfo	<132.2-1.el9_6.aa	132.2-1.el9_6.aa
redhat/osbuild-composer-debugsource	<132.2-1.el9_6.aa	132.2-1.el9_6.aa
redhat/osbuild-composer-tests-debuginfo	<132.2-1.el9_6.aa	132.2-1.el9_6.aa
redhat/osbuild-composer-worker	<132.2-1.el9_6.aa	132.2-1.el9_6.aa
redhat/osbuild-composer-worker-debuginfo	<132.2-1.el9_6.aa	132.2-1.el9_6.aa

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of RHSA-2025:7425?
The severity of RHSA-2025:7425 is classified as important.
What versions are affected by RHSA-2025:7425?
RHSA-2025:7425 affects Red Hat Enterprise Linux 8, Red Hat Enterprise Linux Server for IBM z Systems, Red Hat Enterprise Linux for ARM 64, and Red Hat Enterprise Linux for Power, little endian.
How do I fix RHSA-2025:7425?
To fix RHSA-2025:7425, update your systems to the latest packages provided by Red Hat.
What is RHSA-2025:7425 related to?
RHSA-2025:7425 relates to vulnerabilities found in a service for building customized OS artifacts.
Is there a workaround for RHSA-2025:7425?
Currently, there are no specified workarounds for RHSA-2025:7425; applying updates is recommended.

collector/redhat-errata-latest
source/Red Hat
anchor-id/RHSA-2025:7425
agent/software-canonical-lookup
agent/source
agent/type
agent/severity
agent/softwarecombine
agent/last-modified-date
agent/references
agent/title
agent/description
agent/first-publish-date
agent/remedy
agent/event
agent/tags
collector/redhat-errata
vendor/red hat
canonical/red hat enterprise linux 8
canonical/red hat enterprise linux server for ibm z systems
canonical/red hat enterprise linux for arm 64
canonical/red hat enterprise linux for power, little endian - extended update support
package-manager/redhat